password – Compass Security Blog

Reversing obfuscated passwords

During internal penetration tests or Windows client hardening engagements, we often find configuration files with obfuscated passwords. The post demonstrates a general approach and required tools to effectively make use of such credentials.

Reversing in God Mode

March 5, 2012 / Cyrill Brunschwiler / 0 Comments

Fridays, I was approaching a win32 reversing challenge. So I transferred the binary into my Windows XP virtual box and fired-up OllyDbg. The goal was to bypass the username and password prompt that occurred on application startup. Hilariously, I was just providing a dummy name and password to the app…. “asdf” “asdf” as probably most […]

Up ↑

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.

Necessary

Always Enabled

Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.

Cookie	Duration	Description
cookielawinfo-checbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Analytics

Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics the number of visitors, bounce rate, traffic source, etc.

Cookie	Duration	Description
_ga	2 years	Contains a random generated user ID. Used to distinguish recurring users. Collects statistics on the user's visits to the website, such as the number of visits, average length of stay on the website and which pages were read.
_gat	1 minute	Used to throttle request rate for Google Analytics.
_gid	1 day	Contains a random generated user ID. Used to distinguish recurring users. Collects statistics on the user's visits to the website, such as the number of visits, average length of stay on the website and which pages were read.

Others

Compass Security Blog

Offensive Defense

Reversing obfuscated passwords

Reversing in God Mode

Recent Posts

Compass Links

Categories

Compass Security Blog

Offensive Defense

Reversing obfuscated passwords

Reversing in God Mode

Recent Posts

Tags

Compass Links

Categories

Cookie Consent